Date: 19th July 2023
Secure Code Warrior is aware of the recently disclosed MOVEit vulnerabilities, CVE-2023-34362 and CVE-2023-35036. MOVEit recently announced, “a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer’s database.”
We have assessed our internal environment, we are not using MOVEit web transfer application. Secure Code Warrior confirms we are not impacted.